最重要的事情,其实非常简单:养成每日练习的习惯。艺术不是一个项目,不是一门生意,甚至不只是职业。艺术是一种生活。
NamespaceWhat it isolatesWhat the process seesPIDProcess IDsOwn process tree, starts at PID 1MountFilesystem mount pointsOwn mount table, can have different rootNetworkNetwork interfaces, routingOwn interfaces, IP addresses, portsUserUID/GID mappingCan be root inside, nobody outsideUTSHostnameOwn hostnameIPCSysV IPC, POSIX message queuesOwn shared memory, semaphoresCgroupCgroup root directoryOwn cgroup hierarchyTimeSystem clocks (monotonic, boot)Own system uptime and clock offsetsNamespaces are what Docker containers use. When you run a container, it gets its own PID namespace (cannot see host processes), its own mount namespace (own filesystem view), its own network namespace (own interfaces), and so on.
,这一点在体育直播中也有详细论述
a separate allocator for each of your data structures — or rather, for
Nasa has also asked rival company Blue Origin - which is owned by Jeff Bezos - to come up with an accelerated plan for a lunar lander.